{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,2]],"date-time":"2026-06-02T09:23:55Z","timestamp":1780392235155,"version":"3.54.1"},"reference-count":26,"publisher":"IEEE","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2011,6]]},"DOI":"10.1109\/dsn.2011.5958263","type":"proceedings-article","created":{"date-parts":[[2011,7,21]],"date-time":"2011-07-21T15:17:24Z","timestamp":1311261444000},"page":"506-517","source":"Crossref","is-referenced-by-count":47,"title":["Analysis of security data from a large computing organization"],"prefix":"10.1109","author":[{"given":"A.","family":"Sharma","sequence":"first","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Z.","family":"Kalbarczyk","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"J.","family":"Barlow","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"R.","family":"Iyer","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"263","reference":[{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1145\/1210263.1210267"},{"key":"ref11","article-title":"A Database of Computer Attacks for the Evaluation of Intrusion Detection Systems","author":"kendall","year":"1999","journal-title":"MIT Electrical and Computer Engineering"},{"key":"ref12","article-title":"An application of pattern matching in intrusion detection","author":"kumar","year":"1994","journal-title":"Department of Computer Science Technical Report"},{"key":"ref13","article-title":"Classification of intrusions","author":"kumar","year":"1995"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1145\/185403.185412"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1145\/948134.948137"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1016\/S1389-1286(99)00112-7"},{"key":"ref17","article-title":"Cautionary Tales: Stealth Coordinated Attack HOWTO","author":"ruiu","year":"1999"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1109\/IPOM.2002.1045765"},{"key":"ref19","article-title":"Analysis of DoS attack traffic data","author":"sung","year":"2002","journal-title":"FIRST Conference"},{"key":"ref4","article-title":"A data-driven finite state machine model for analyzing security vulnerabilities","author":"chen","year":"2003","journal-title":"The International Conference on Dependable Systems and Networks"},{"key":"ref3","author":"bellovin","year":"1994","journal-title":"Firewalls and Internet Security Repelling the Wily Hacker"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1109\/DSN.2006.9"},{"key":"ref5","author":"cohen","year":"1995","journal-title":"Protection and Security on the Information Superhighway"},{"key":"ref8","year":"2010"},{"key":"ref7","author":"cutts","year":"1993","journal-title":"United States Patent"},{"key":"ref2","article-title":"Principles for Developing Comprehensive Network Visibility","author":"allman","year":"2008","journal-title":"The 3rd USENIX Workshop on Hot Topics in Security USENIX HotSec"},{"key":"ref9","article-title":"Detection of Complex Cyber Attacks","author":"gregorio-de souza","year":"2006","journal-title":"SPIE 6201"},{"key":"ref1","article-title":"Life Without Firewalls","volume":"28","author":"singer","year":"2003","journal-title":"USENIX Magazine"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1109\/NSS.2010.56"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1145\/366173.366187"},{"key":"ref21","article-title":"Modeling Internet Attacks","author":"tidwell","year":"2001","journal-title":"IEEE Workshop Inform Assurance Security"},{"key":"ref24","year":"0","journal-title":"Verizon Business Risk Team 2010 Data Breach Investigations Report"},{"key":"ref23","doi-asserted-by":"crossref","DOI":"10.1007\/11856214_1","article-title":"A framework for the Application of Association Rule Mining in Large Intrusion Detection Infrastructures","volume":"4219","author":"treinen","year":"2006","journal-title":"9th Int'l Symposium on Recent Advances in Intrusion Detection"},{"key":"ref26","article-title":"STATL: An Attack Language for State-based Intrusion Detection","author":"eckmann","year":"2000","journal-title":"ACM Workshop Intrusion Detection Systems"},{"key":"ref25","article-title":"An analysis of security incidents on the Internet 1989-1995","author":"howard","year":"1998"}],"event":{"name":"Networks (DSN)","location":"Hong Kong, China","start":{"date-parts":[[2011,6,27]]},"end":{"date-parts":[[2011,6,30]]}},"container-title":["2011 IEEE\/IFIP 41st International Conference on Dependable Systems &amp; Networks (DSN)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx5\/5949577\/5958196\/05958263.pdf?arnumber=5958263","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2017,6,20]],"date-time":"2017-06-20T03:27:51Z","timestamp":1497929271000},"score":1,"resource":{"primary":{"URL":"http:\/\/ieeexplore.ieee.org\/document\/5958263\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2011,6]]},"references-count":26,"URL":"https:\/\/doi.org\/10.1109\/dsn.2011.5958263","relation":{},"subject":[],"published":{"date-parts":[[2011,6]]}}}